94 matches found
Grup Arge Energy and Control Systems SmartPower Energy Management System 输入验证错误漏洞
Grup Arge Energy and Control Systems SmartPower Energy Management System is a web-based system from Grup Arge Energy and Control Systems developed specifically to improve energy efficiency in organizations. A security vulnerability exists in Grup Arge Energy and Control Systems SmartPower Energy...
Grup Arge Energy and Control Systems SmartPower Energy Management System 跨站脚本漏洞
Grup Arge Energy and Control Systems SmartPower Energy Management System is a web-based system from Grup Arge Energy and Control Systems developed specifically to improve energy efficiency in organizations. A cross-site scripting vulnerability exists in Grup Arge Energy and Control Systems...
CVE-2022-4557 SQL Injection in Smartpower Web
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Group Arge Energy and Control Systems Smartpower Web allows SQL Injection. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-4557
CVE-2022-4557 affects Smartpower Web (Group Arge Energy and Control Systems). The vulnerability is an SQL Injection caused by improper neutralization of special elements in SQL commands within Smartpower Web prior to version 23.01.01. Reported impact is high across confidentiality, integrity, and...
CVE-2022-4557 SQL Injection in Smartpower Web
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Group Arge Energy and Control Systems Smartpower Web allows SQL Injection. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-45091
CVE-2022-45091 affects Grup Arge Energy and Control Systems Smartpower Web; the issue is an improper neutralization of user input during web page generation, enabling Cross-site Scripting (XSS). Affected version is Smartpower Web before 23.01.01. Mitigation: upgrade to version 23.01.01 or later (...
CVE-2022-45091 Cross-site Scripting in Smartpower Web
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Group Arge Energy and Control Systems Smartpower Web allows Cross-Site Scripting XSS. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-45091 Cross-site Scripting in Smartpower Web
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Group Arge Energy and Control Systems Smartpower Web allows Cross-Site Scripting XSS. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-45090 SQL Injection in Smartpower Web
Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows SQL Injection. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-45090 SQL Injection in Smartpower Web
Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows SQL Injection. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-45090
The CVE-2022-45090 entry concerns an Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web, enabling SQL Injection. Multiple sources (Red Hat, NVD, CNNVD/CVE record) describe that Smartpower Web versions before 23.01.01 are affected due to insufficient in...
CVE-2022-45089
CVE-2022-45089 applies to Smartpower Web from Group Arge Energy and Control Systems, with versions prior to 23.01.01 vulnerable due to improper input validation that enables SQL Injection (high impact, network exposure). Mitigation: upgrade to 23.01.01 or later (per PT-2023-14597 and vendor advis...
CVE-2022-45089 SQL Injection in Smartpower Web
Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows SQL Injection. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-45089 SQL Injection in Smartpower Web
Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows SQL Injection. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-45088 Local File Inclusion in Smartpower Web
Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows PHP Local File Inclusion. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-45088 Local File Inclusion in Smartpower Web
Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows PHP Local File Inclusion. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-45088
CVE-2022-45088 corresponds to an Improper Input Validation vulnerability in Smartpower Web by Group Arge Energy and Control Systems. Affected: Smartpower Web prior to version 23.01.01. Root cause: inadequate input validation enabling PHP Local File Inclusion. Impact as stated: potential exposure ...
CVE-2022-45087 Cross-site Scripting in Smartpower Web
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Group Arge Energy and Control Systems Smartpower Web allows Cross-Site Scripting XSS. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-45087 Cross-site Scripting in Smartpower Web
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Group Arge Energy and Control Systems Smartpower Web allows Cross-Site Scripting XSS. This issue affects Smartpower Web: before 23.01.01...
CVE-2022-45087
CVE-2022-45087 describes an XSS vulnerability in Group Arge Energy and Control Systems' Smartpower Web prior to version 23.01.01, caused by improper neutralization of user input during web page generation. Impact is limited to web-based UI exposure of stored/ reflected input with low confidential...